The IT Law Wiki


Cyber risk is the

[r]isk of financial loss, legal liability, reputational damage, regulatory action, operational disruption, or damage from the failure of the digital technologies employed for informational and/or operational functions introduced to a manufacturing system via electronic means from the unauthorized access, use, disclosure, disruption, modification, or destruction of the manufacturing system.[1]

Cyber risks are

[r]isks that arise from the loss of confidentiality, integrity, or availability of information or information systems and reflect the potential adverse impacts to organizational operations (including mission, functions, image, or reputation), organizational assets, individuals, other organizations, and the Nation.[2]
the combination of the probability of an event within the realm of networked information systems and the consequences of this event on assets and reputation.[3]


"Cyber risks are a business issue with technical aspects. Cyber risk impacts and is impacted by all areas of the organization."[4]


See also[]